1 1 . A method for dial roaming for users having a home non-LD AP 

2 (Lightweight Directory Access Protocol) region to allow access comprising: 

3 dialing into a local dial access provider; 

4 creating an access request ; 

5 forwarding the dial access request to a corporate remote authentication dial-in 

6 user service (RADIUS) server; 

7 proxying the request to a regional RADIUS server associated with the user's 

8 home region; 

9 accessing the regional user database to determine if the user is present in the 

10 regional database; 

1 1 authenticating the user; and 

12 providing configuration information to the user to allow access to the network. 

13 2. The method for dial roaming of claim 1 wherein the access request is 

14 forwarded to an access provider via a network access server (NAS). 

15 3. The method of claim 2 wherein the NAS functions as a client of the 

16 corporate RADIUS server. 

17 4. The method of claim 1 further comprising: 

18 the corporate RADIUS server determining if the user is a member of an LDAP or 

19 non-LD AP region. 

20 5. The method of claim 4 wherein the determining if the user is a member of an 

21 LDAP or non-LD AP region is accomplished by reviewing a configuration file 

22 stored in the corporate RADIUS server. 
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1 6. The method of claim 1 further comprising forwarding the access request to a 

2 regional LDAP database if the home region is LDAP enabled. 

3 7. The method of claim 6 further comprising the regional LDAP database 

4 authenticating the user. 

5 8. The method of claim 7 further comprising the regional LDAP database 

6 sending an "accept" message if the user is in the regional LDAP database and a 

7 "deny" message if the user is not in the regional LDAP database. 

8 9. The method of claim 1 wherein the access request comprises a user name and 

9 password. 

10 10. The method of claim 9 wherein the user name comprises a regional naming 

1 1 convention for identifying the home region of the user. 

12 11. The method of claim 9 wherein the user name comprises an email address of 

13 the user. 

14 12. the method of claim 9 further comprising comparing the user password to the 

15 password stored in the non-LDAP database. 

16 13. The method of claim 12 wherein the password from the database is CHAP 

17 hashed, and wherein the password delivered to the database is CHAP hashed, and 

18 wherein the password comparison comprises comparing the CHAP hashed 

19 password delivered to the database with the CHAP hashed password extracted 

20 from the database. 

21 14. The method of claim 12 wherein the database of the non-LDAP regions is an 

22 subscriber management system (SMS) database. 

23 15. The method of claim 9 wherein the password is hashed to maintain security. 
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1 16. A system for dial roaming for users having a home non-LDAP region to allow 

2 access comprising: 

3 a user computer having a home service region for creating a network access 

4 request; 

5 a dial up connection over a first network to a network access server (NAS) in a 

6 roaming area: 

7 a second network connected to the NAS for receiving the network access request; 

8 a local network service provider connected to the second network; 

9 a third network connected to the network service provider; 

10 a corporate RADIUS server connected to the third network for receiving the 

1 1 access request; and 

12 a regional LDAP server comprising a user database for authenticating the user 

13 access request and for allowing access to the regional network. 

14 17. The system of claim 16 further comprising a regional RADIUS server 

15 connected to a non-LDAP regional server connected to the second network for 

16 receiving the access request. 

17 18. The system of claim 17 wherein the non-LDAP regional server further 

18 comprises a user database and access instructions for authenticating the user 

19 access request in the non-LDAP server database. 

20 19. The system of claim 18 wherein the database is an SMS database. 

21 20. The system of claim 16 wherein the user access request comprises a user ID 

22 and password. 
23 
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1 21. The system of claim 20 wherein the NAS further comprises instructions for 

2 hashing the user ID and password to enhance security. 

3 22. The system of claim 1 8 wherein the non-LDAP server further comprises 

4 instructions to permit access if the user is in the database and to deny access if the 

5 user is not in the database. 

6 23. A system for authenticating users using a standard RADIUS protocol 

7 against a non-standard subscriber management system and database comprising: 

8 a RADIUS server, having a RADIUS authentication protocol, connected to a first 

9 network for receiving an access request from a user; 

10 a subscriber management server, connected to a second network, comprising a 

1 1 user database for authenticating the user access request over the second network; 

12 and 

13 a database view created in memory on the subscriber management server for 

14 providing user access information in the correct format for the RADIUS 

15 authentication protocol. 

16 24. The system for authenticating users using a standard RADIUS protocol 

17 against a non-standard subscriber management system and database of claim 23 

18 wherein the user access request is a username and password. 

19 25. The system for authenticating users using a standard RADIUS protocol 

20 against a non-standard subscriber management system and database of claim 24 

21 wherein the username is and email address. 



12 



1 26. The system for authenticating users using a standard RADIUS protocol 

2 against a non-standard subscriber management system and database of claim 24 

3 wherein the 

4 password from the user database is CHAP hashed to compare to the password 

5 presented in the user access request. 

6 27. The system for authenticating users using a standard RADIUS protocol 

7 against a non-standard subscriber management system and database of claim 26 

8 wherein the subscriber management server further comprises instructions for 

9 sending an "accept" message to the RADIUS server if the user password from the 

10 user database matches the user password presented in the user access request, and 

1 1 for sending a "deny" message to the RADIUS server if the user password from 

12 the user database does not matche the user password presented in the user access 

13 request. 

14 
15 
16 
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